Cross-Scope Privilege API - ServiceNow Fluent
The Cross-Scope Privilege API defines cross-scope privileges [sys_scope_privilege] for runtime access tracking.
Runtime access tracking allows administrators to manage script access to application resources by creating a list of script operations and targets that the system authorizes to run. For general information about cross-scope privileges, see Cross-scope privilege record.
CrossScopePrivilege object
Configure cross-scope privileges [sys_scope_privilege] that determine which script operations and targets the system allows to run in the application.
| Name | Type | Description |
|---|---|---|
| $id | String or Number | Required. A unique ID for the metadata object. When you build the application, this ID is hashed into a unique sys_id. Format: |
| status | String | Required. The authorization for this record. Valid values:
|
| operation | String | Required. The operation that the script performs on the target. The target type determines the available operations. Tables [sys_db_object] support the read, write, create, and delete operations. Script includes [sys_script_include] and script objects [sys_db_object] only support the execute operation. Valid values:
|
| target_name | String | Required. The name of the table, script include, or script object being requested. |
| target_scope | String | Required. The application scope from which resources are requested. |
| target_type | String | Required. The type of request: script include, script object, or table. Valid values:
|
| $meta | Object | Metadata for the application metadata. With the installMethod property, you can map the application metadata to an output directory that loads only in specific
circumstances. Valid values for installMethod:
|
import { CrossScopePrivilege } from '@servicenow/sdk/core'
CrossScopePrivilege({
$id: Now.ID['cross_1'],
status: 'allowed',
operation: 'execute',
target_name: 'Script type',
target_scope: 'x_snc_example',
target_type: 'scriptable',
})